Risk

High

Date Discovered

July 12, 2011

Description

Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel due to a use-after-free error.
A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts may cause a denial-of-service condition.

Technologies Affected

Avaya Aura Conferencing 6.0 Standard

Avaya CallPilot 4.0

Avaya CallPilot 5.0

Avaya Communication Server 1000 Telephony Manager 3.0

Avaya Communication Server 1000 Telephony Manager 4.0

Avaya Meeting Exchange - Client Registration Server

Avaya Meeting Exchange - Recording Server

Avaya Meeting Exchange - Streaming Server

Avaya Meeting Exchange - Web Conferencing Server

Avaya Meeting Exchange - Webportal

Avaya Meeting Exchange 5.0

Avaya Meeting Exchange 5.0 SP1

Avaya Meeting Exchange 5.0 SP2

Avaya Meeting Exchange 5.0.0.0.52

Avaya Meeting Exchange 5.1

Avaya Meeting Exchange 5.1 SP1

Avaya Meeting Exchange 5.2

Avaya Meeting Exchange 5.2 SP1

Avaya Meeting Exchange 5.2 SP2

Avaya Messaging Application Server 4

Avaya Messaging Application Server 5

Avaya Messaging Application Server 5.2

Microsoft Windows 7 Home Premium

Microsoft Windows 7 Professional

Microsoft Windows 7 RC

Microsoft Windows 7 Starter

Microsoft Windows 7 Ultimate

Microsoft Windows 7 XP Mode

Microsoft Windows 7 for 32-bit Systems

Microsoft Windows 7 for 32-bit Systems SP1

Microsoft Windows 7 for Itanium-based Systems

Microsoft Windows 7 for Itanium-based Systems SP1

Microsoft Windows 7 for x64-based Systems

Microsoft Windows 7 for x64-based Systems SP1

Microsoft Windows Server 2003 Datacenter Edition

Microsoft Windows Server 2003 Datacenter Edition Itanium

Microsoft Windows Server 2003 Datacenter Edition Itanium SP1

Microsoft Windows Server 2003 Datacenter Edition Itanium SP1 Beta 1

Microsoft Windows Server 2003 Datacenter Edition SP1

Microsoft Windows Server 2003 Datacenter Edition SP1 Beta 1

Microsoft Windows Server 2003 Datacenter x64 Edition

Microsoft Windows Server 2003 Datacenter x64 Edition SP2

Microsoft Windows Server 2003 Enterprise Edition

Microsoft Windows Server 2003 Enterprise Edition Itanium

Microsoft Windows Server 2003 Enterprise Edition Itanium SP1

Microsoft Windows Server 2003 Enterprise Edition Itanium SP1 Beta 1

Microsoft Windows Server 2003 Enterprise Edition Itanium SP2

Microsoft Windows Server 2003 Enterprise Edition Itanium Sp2 Itanium

Microsoft Windows Server 2003 Enterprise Edition SP1

Microsoft Windows Server 2003 Enterprise x64 Edition SP2

Microsoft Windows Server 2003 Itanium SP1

Microsoft Windows Server 2003 Itanium SP2

Microsoft Windows Server 2003 R2

Microsoft Windows Server 2003 R2 Compute Cluster

Microsoft Windows Server 2003 R2 Datacenter

Microsoft Windows Server 2003 R2 Datacenter Edition

Microsoft Windows Server 2003 R2 Datacenter Edition SP1

Microsoft Windows Server 2003 R2 Datacenter Edition SP2

Microsoft Windows Server 2003 R2 Enterprise

Microsoft Windows Server 2003 R2 Enterprise Edition

Microsoft Windows Server 2003 R2 Enterprise Edition SP1

Microsoft Windows Server 2003 R2 Enterprise Edition SP2

Microsoft Windows Server 2003 R2 Platfom SDK

Microsoft Windows Server 2003 R2 Standard

Microsoft Windows Server 2003 R2 Standard Edition

Microsoft Windows Server 2003 R2 Storage

Microsoft Windows Server 2003 R2 X64

Microsoft Windows Server 2003 R2 X64-Datacenter

Microsoft Windows Server 2003 R2 X64-Enterprise

Microsoft Windows Server 2003 R2 X64-Standard

Microsoft Windows Server 2003 R2 web Edition

Microsoft Windows Server 2003 SP1

Microsoft Windows Server 2003 Standard Edition

Microsoft Windows Server 2003 Standard Edition SP1

Microsoft Windows Server 2003 Standard Edition SP1 Beta 1

Microsoft Windows Server 2003 Standard Edition SP2

Microsoft Windows Server 2003 Standard x64 Edition

Microsoft Windows Server 2003 Web Edition

Microsoft Windows Server 2003 Web Edition SP1

Microsoft Windows Server 2003 Web Edition SP1 Beta 1

Microsoft Windows Server 2003 Web Edition SP2

Microsoft Windows Server 2003 x64 SP1

Microsoft Windows Server 2003 x64 SP2

Microsoft Windows Server 2008 - Sp2 Enterprise X64

Microsoft Windows Server 2008 Datacenter Edition

Microsoft Windows Server 2008 Datacenter Edition Release Candidate

Microsoft Windows Server 2008 Datacenter Edition SP2

Microsoft Windows Server 2008 Enterprise Edition

Microsoft Windows Server 2008 Enterprise Edition Release Candidate

Microsoft Windows Server 2008 Enterprise Edition SP2

Microsoft Windows Server 2008 R2

Microsoft Windows Server 2008 R2 Datacenter

Microsoft Windows Server 2008 R2 Datacenter SP1

Microsoft Windows Server 2008 R2 Itanium

Microsoft Windows Server 2008 R2 Itanium SP1

Microsoft Windows Server 2008 R2 x64

Microsoft Windows Server 2008 R2 x64 SP1

Microsoft Windows Server 2008 SP2 Beta

Microsoft Windows Server 2008 Standard Edition

Microsoft Windows Server 2008 Standard Edition Itanium

Microsoft Windows Server 2008 Standard Edition Release Candidate

Microsoft Windows Server 2008 Standard Edition SP2

Microsoft Windows Server 2008 Standard Edition X64

Microsoft Windows Server 2008 for 32-bit Systems

Microsoft Windows Server 2008 for 32-bit Systems SP2

Microsoft Windows Server 2008 for Itanium-based Systems

Microsoft Windows Server 2008 for Itanium-based Systems R2

Microsoft Windows Server 2008 for Itanium-based Systems SP2

Microsoft Windows Server 2008 for x64-based Systems

Microsoft Windows Server 2008 for x64-based Systems R2

Microsoft Windows Server 2008 for x64-based Systems SP2

Microsoft Windows Vista

Microsoft Windows Vista Business

Microsoft Windows Vista Business 64-bit edition

Microsoft Windows Vista Business 64-bit edition SP1

Microsoft Windows Vista Business 64-bit edition SP2

Microsoft Windows Vista Business SP1

Microsoft Windows Vista Business SP2

Microsoft Windows Vista Enterprise

Microsoft Windows Vista Enterprise 64-bit edition

Microsoft Windows Vista Enterprise 64-bit edition SP1

Microsoft Windows Vista Enterprise 64-bit edition SP2

Microsoft Windows Vista Enterprise SP1

Microsoft Windows Vista Enterprise SP2

Microsoft Windows Vista Home Basic

Microsoft Windows Vista Home Basic 64-bit edition

Microsoft Windows Vista Home Basic 64-bit edition SP1

Microsoft Windows Vista Home Basic 64-bit edition SP2

Microsoft Windows Vista Home Basic 64-bit edition Sp1 X64

Microsoft Windows Vista Home Basic 64-bit edition Sp2 X64

Microsoft Windows Vista Home Basic SP1

Microsoft Windows Vista Home Basic SP2

Microsoft Windows Vista Home Premium

Microsoft Windows Vista Home Premium 64-bit edition

Microsoft Windows Vista Home Premium 64-bit edition SP1

Microsoft Windows Vista Home Premium 64-bit edition SP2

Microsoft Windows Vista Home Premium SP1

Microsoft Windows Vista Home Premium SP2

Microsoft Windows Vista SP1

Microsoft Windows Vista SP2

Microsoft Windows Vista SP2 Beta

Microsoft Windows Vista Ultimate

Microsoft Windows Vista Ultimate 64-bit edition

Microsoft Windows Vista Ultimate 64-bit edition SP1

Microsoft Windows Vista Ultimate 64-bit edition SP2

Microsoft Windows Vista Ultimate SP1

Microsoft Windows Vista Ultimate SP2

Microsoft Windows Vista x64 Edition

Microsoft Windows Vista x64 Edition SP1

Microsoft Windows Vista x64 Edition SP2

Microsoft Windows XP

Microsoft Windows XP 64-bit Edition

Microsoft Windows XP 64-bit Edition SP1

Microsoft Windows XP Embedded

Microsoft Windows XP Embedded SP1

Microsoft Windows XP Embedded SP2

Microsoft Windows XP Embedded SP3

Microsoft Windows XP Home

Microsoft Windows XP Home SP1

Microsoft Windows XP Home SP2

Microsoft Windows XP Home SP3

Microsoft Windows XP Media Center Edition

Microsoft Windows XP Media Center Edition 2005 SP3

Microsoft Windows XP Media Center Edition SP1

Microsoft Windows XP Media Center Edition SP2

Microsoft Windows XP Media Center Edition SP3

Microsoft Windows XP Professional

Microsoft Windows XP Professional SP1

Microsoft Windows XP Professional SP2

Microsoft Windows XP Professional SP3

Microsoft Windows XP Professional x64 Edition

Microsoft Windows XP Professional x64 Edition SP2

Microsoft Windows XP Professional x64 Edition SP3

Microsoft Windows XP Service Pack 3

Microsoft Windows XP Tablet PC Edition

Microsoft Windows XP Tablet PC Edition SP1

Microsoft Windows XP Tablet PC Edition SP2

Microsoft Windows XP Tablet PC Edition SP3

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.

To exploit this vulnerability, an attacker requires local access to an affected computer. Grant local access for trusted and accountable users only.

Vendor updates are available. Please see the referenced advisory for more information.

Disclaimer
The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information.

Symantec, Symantec products, Symantec Security Response, and secure@symantec.com are registered trademarks of Symantec Corp. and/or affiliated companies in the United States and other countries. All other registered and unregistered trademarks represented in this document are the sole property of their respective companies/owners.